Primary

Context

SeaCMS Arbitrary File Read Vulnerability in admin_safe_file.php

Vulnerability

An arbitrary file read vulnerability has been identified in SeaCMS version 13.3. The issue arises in the file 'admin_safe_file.php', where the 'file_get_contents' function does not properly validate parameters, allowing attackers to read arbitrary files on the server.

Impact

Exploitation of this vulnerability allows for arbitrary file reading, which could lead to the disclosure of sensitive information from the server.

Reproduction

To reproduce this vulnerability, access 'admin_safe_file.php' and use the 'action' parameter set to 'download' along with the 'file' parameter specifying the path of the file to be read, such as '/etc/passwd'. This request will bypass the insufficient parameter validation and return the contents of the specified file.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

3.3

exploitability

9.7

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

10.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

3.3

exploitability

9.7

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

10.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SeaCMS Arbitrary File Read Vulnerability in admin_safe_file.php

Vulnerability

Impact

Reproduction

Affected Products

SeaCMS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating